THREATOPS
THREAT OPSCVEs › CVE-2012-1856

CVE-2012-1856 — Microsoft Office MSCOMCTL.OCX Remote Code Execution Vulnerability

CISA KEVExploited: confirmedMicrosoft

The TabStrip ActiveX control in the Common Controls in MSCOMCTL.OCX in Microsoft Office allows remote attackers to execute arbitrary code via a crafted (1) document or (2) web page that triggers system-state corruption.

Vulnerability details